LOGIN
CONTACT SALES
LOGIN
CONTACT SALES

.idea Project Directory

Description

During the scan, Cytrix managed to find the “.idea Project Directory” Vulnerability.
The “.idea” directory contains configuration files (of .XML type), these files may lead the attacker to your database and credentials, it can contain sensitive data such as : the location of your Windows directory, your saved personal settings, and many more.
These files should not exist on the production system.

These files might contain sensitive information which may assist a certain attacker to perform more advanced attacks, harming your web assets in a much greater extent.

Severity/Score

CVSS Version 3.x – 5.3 Medium

Recommendation

Remove these files from any production related systems, or, restrict the access to this folder so that only authorized personal have access to it.

References

https://cytrix.io/blog/blog/information-disclosure-self-revealing-our-secrets/

< Return to all Vulnerabilities

Request a Demo

What is Cytrix

Cytrix scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Cytrix’s mission is to make

Read More »

APT vs. ATP

In this article we will talk about APT vs. ATP. In other words, Advanced Persistent Threat and Advanced Threat Protection and the context between these

Read More »
Facebook Linkedin

Company

Resources

Docs

Latest posts

PING US
Facebook Linkedin